Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/zmleF3SP7hbGRaAKYQo4z8RQ07A.roa
File: zmleF3SP7hbGRaAKYQo4z8RQ07A.roa (raw, json)
Hash identifier: 7nW5ZEE2u6BVSJDnvSbRPaN+KBtGEZIBqfnWpFe2vSo=
Subject key identifier: CE:69:5E:17:74:8F:EE:16:C6:45:A0:0A:61:0A:38:CF:C4:50:D3:B0
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 2D1AAA04
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/zmleF3SP7hbGRaAKYQo4z8RQ07A.roa
Signing time: Thu 09 Jun 2022 13:02:12 +0000
ROA not before: Thu 09 Jun 2022 13:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 213.244.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 756722180 (0x2d1aaa04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Jun 9 13:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce695e17748fee16c645a00a610a38cfc450d3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:13:13:4c:b4:a3:b6:5b:65:c8:27:de:91:2c:
90:61:fe:18:67:79:9d:3a:00:e7:95:99:8e:66:00:
ec:e1:55:69:d4:7b:74:b8:83:2f:75:de:84:39:3b:
fe:46:d0:cc:f4:a2:4a:20:d0:21:aa:0d:1d:26:28:
49:bc:05:45:1f:da:71:34:32:26:65:5d:24:25:63:
ef:ea:a0:b6:2a:e4:8f:1e:a3:7b:82:89:75:75:02:
ff:29:6d:a2:4d:35:12:a5:e5:3f:c3:98:90:de:34:
01:cd:75:07:63:4d:a0:5a:12:61:d2:08:87:91:a8:
62:38:99:06:ec:40:70:8f:5c:72:2a:1c:80:72:10:
79:03:df:fb:6a:2a:97:0f:64:ed:2d:21:fd:24:a4:
80:17:10:0f:97:ea:9c:00:ce:39:e1:aa:4f:fa:41:
93:c8:fc:d3:38:6c:ac:93:d9:5e:94:f6:b3:8b:40:
f5:bf:9b:84:33:9f:ed:bc:2f:79:91:7f:c0:dd:03:
7e:44:22:0f:21:4b:f2:44:bf:2b:da:ba:a9:6a:9c:
9b:b3:20:86:8e:10:0a:05:8c:75:ec:f4:39:8b:ba:
77:d2:a6:47:40:59:35:0b:11:98:68:30:9c:64:b0:
31:42:72:d3:50:26:d0:e5:0f:62:9b:2c:e0:0b:0d:
50:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:69:5E:17:74:8F:EE:16:C6:45:A0:0A:61:0A:38:CF:C4:50:D3:B0
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/zmleF3SP7hbGRaAKYQo4z8RQ07A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.244.73.0/24
Signature Algorithm: sha256WithRSAEncryption
59:32:a3:0b:e8:24:66:e0:d4:09:4f:25:a0:a6:35:a2:1d:d8:
0f:25:07:31:c3:b5:a2:51:7e:59:cc:6f:1a:a1:00:fa:02:9c:
10:fe:31:bd:0a:b5:fd:60:23:3e:a7:30:ac:e1:16:39:ad:f2:
7c:2f:fd:4d:fd:f6:a2:86:85:8a:08:b2:ab:3e:fb:19:57:8a:
ae:80:38:e8:49:40:a9:a9:3a:3e:d9:81:1a:fe:c8:d6:fd:a5:
9b:30:a7:06:6c:8d:e2:85:e6:5e:76:46:42:7f:b6:93:82:5a:
ce:a9:be:76:cc:0b:41:0a:45:69:d3:66:4c:0e:26:ec:b3:1c:
68:77:05:78:af:73:4d:cd:66:59:ea:bd:0b:1c:df:ce:88:50:
fb:32:56:11:58:c8:d2:72:20:bf:bc:4f:17:18:bf:00:ff:24:
aa:cf:e2:39:8d:6d:d3:59:c0:d3:ca:3e:61:97:35:d0:e2:fe:
ff:61:de:6a:42:09:fe:2b:9b:ff:37:e7:9c:76:0f:66:70:13:
b5:ae:1b:1c:27:84:5f:72:25:64:ee:44:5f:69:db:7b:36:9b:
ff:da:42:1a:b2:22:31:bd:d8:e0:bc:7c:eb:c2:ec:db:5d:4a:
58:0e:df:c6:35:50:62:04:6b:97:71:cc:2f:b4:66:59:0f:7f:
66:a3:b2:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:10 2024 by rpki-client on console-ams.rpki-client.org